17fdb70dd61b548790180b3c3431ca826d4206a7d479c3042e12032d13803e80[.]exe | Triage

Sharing

General

Target

17fdb70dd61b548790180b3c3431ca826d4206a7d479c3042e12032d13803e80.exe
Size

14.8MB
MD5

3da089c1ed8bb4643f95aafea7150310
SHA1

ea6376ccb7c27a5c5daee560935806370c094861
SHA256

17fdb70dd61b548790180b3c3431ca826d4206a7d479c3042e12032d13803e80
SHA512

cc76b08edd17ef89d9ecf01c433070882e05b1147acf2a4e69b17997d0c026f9196b1bc6b3a6186281c7b8f0189fb9f4b54706b4ad566643f7d4da22cba94594
SSDEEP

393216:h6JN7+zbZFph3fBXKfiyuoDliKXzyuMxM0XbcE:4mbZFph3NKjsqydxM0XbJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
17fdb70dd61b548790180b3c3431ca826d4206a7d479c3042e12032d13803e80.exe

Files

17fdb70dd61b548790180b3c3431ca826d4206a7d479c3042e12032d13803e80.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\leon\source\repos\NewRedEye\NewRedEye\obj\x86\Debug\NewRedEye.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 14.8MB - Virtual size: 14.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ